Re: Laptop stolen at SF Ca Airport with data of33000travelers

["Max Hozven" <mhozven () tealeaf com>]

<sigh...>

 

Regarding the hardware involved, looks like it's time to bring back
dumb-terminals, with no CD/floppy/usb/anything on them,

in instances like this.  PC's/laptops/etc always have the "walk away
with them" risk.

It would also be good to require an electronic ID badge plugged into the
dumb terminal (and password) to gain access.

 

-Max

 

________________________________

From: Sean Steele [mailto:SSteele () infolocktech com] 
Sent: Tuesday, August 05, 2008 10:30 AM
To: Max Hozven; chris () cwalsh org; hbrown () knology net
Cc: dataloss () attrition org
Subject: Re: [Dataloss] Laptop stolen at SF Ca Airport with data
of33000travelers

 

This morning I flew from Reagan (DCA) to Detroit and passed the
SteerClear (err, FlyClear) lane, and its workers. 

I asked about the laptop theft/loss in SFO, attributable to one of their
co-workers, and their response was... 

"That's OK, it wasn't from THIS airport!"

Wow. I fear for us all.

-S.

________________________________

From: dataloss-bounces () attrition org 
To: Chris Walsh ; Henry Brown 
Cc: dataloss () attrition org 
Sent: Tue Aug 05 13:02:50 2008
Subject: Re: [Dataloss] Laptop stolen at SF Ca Airport with data
of33000travelers 

Food for thought:

If the thief had connected up a USB-drive, copied the data from the
laptop to his drive, and walked away, no one would have known.

If the machine was password protected, they could have booted it via a
Ghost/etc boot CD, then copied the data that way.

 

-Max

 "Note: The views and opinions expressed in this email are strictly
those of the page author."

 

________________________________

From: dataloss-bounces () attrition org
[mailto:dataloss-bounces () attrition org] On Behalf Of Chris Walsh
Sent: Tuesday, August 05, 2008 9:53 AM
To: Henry Brown
Cc: dataloss () attrition org
Subject: Re: [Dataloss] Laptop stolen at SF Ca Airport with data of
33000travelers

 

Absolutely epic.

Sigh.

cw

On Tue, Aug 5, 2008 at 4:36 AM, Henry Brown <hbrown () knology net> wrote:


For the past year, travelers at SFO have had the option to enroll in the
Clear Registered Traveler Program. Those who sign up get a biometric ID
card, which allows them to bypass regular security lines for $128 a
year.

[...]

 

        
        As for who stole the laptop in the first place, authorities are
still
        investigating. There were no apparent signs of a break-in.

 

_______________________________________________
Dataloss Mailing List (dataloss () attrition org)
http://attrition.org/dataloss

Tenable Network Security offers data leakage and compliance monitoring
solutions for large and small networks. Scan your network and monitor your
traffic to find the data needing protection before it leaks out!
http://www.tenablesecurity.com/products/compliance.shtml